Still using ECDSA? Think again, and consider EdDSA
One major change within the time of our pandemic is the usage of electronic signatures on documents. Increasingly the usage of our wet-signature methods is receding. But, the alternatives are often DocuSign and pasting images of your signature in a document. These methods have very little credibility and can be seen as “fake digital”, and where it would be almost impossible for someone to actually prove that someone else actually digitally sign something. The highest level of security that DocSign brings is that someone has received an email, but, as we all know, email is not exactly the most trustworthy method of proving anything.
So what’s the alternative? Well, Bitcoin uses ECDSA (Elliptic Curve Digital Signature Algorithm), and where a Bitcoin owner signs a transaction with their private key. Satoshi possibly chose it to avoid the existing patents around the Schnorr signature method. But it is a well-known that sloppy implementation of ECDSA [here] can lead to many digital signing problems. Along with this, many experts just do not trust NIST in defining curves that are free from flaws. Finally, Curve 25519 is seen to be a more secure curve than the NIST-defined P-256 curve.
At the core of security of ECDSA is the usage of a strong random number generator. Any weaknesses in this can lead to the private key being leaked. Along…
